Overview

overview

3

Static

static

3

11f4641744...ad.pdf

windows7-x64

1

11f4641744...ad.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 07:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    11f4641744f94b841725fdb1f61bd7ad.pdf

  • Size

    74KB

  • MD5

    11f4641744f94b841725fdb1f61bd7ad

  • SHA1

    d35b8b74222db65ded1c775e490bcbc63d3f015e

  • SHA256

    82948c85b4b2fb9d13ff4510a827aac0fa6377c6702f959c4409ca1d0e1a6d68

  • SHA512

    7100aa57eb0a50a60f0bf79c860e261a64c494985863b69f4e5802bb5df2df120f02aebaac22b0dc1f3cc1f170a81f19c077b27cb502c1078ed5d95df0cdb19b

  • SSDEEP

    1536:ELFhYelUJ1Ap7+lRqqydJ53GMd/lW4nJ6eMvMF9GKNlTePYy+7hiN0UNgkBJYkhd:ieelcM+loHp3Xd/7noU1lTGYyuhvwwkT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\11f4641744f94b841725fdb1f61bd7ad.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1680

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f926542cdd8505ee598dbd7a0e577d3e

    SHA1

    8287d0c6b215d088dc16ebb513a90fe84ea25970

    SHA256

    85499c8a7bbdc1eb7ddd5217a9cb3fbd6481e497e8d47c94d3149ebba4e83821

    SHA512

    cab15abb0993b3ca086dd673c43240102a5bc0f75fd5ec7f5c90accd28a0dcd9bfc15cd17c6ffdf4412e74e2571e9f216791f7f0019ae2471bed670fa1b48fae

    Download Submit